Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/A3F44008D7A211EEA4F45676C4F9AE02.roa
File: A3F44008D7A211EEA4F45676C4F9AE02.roa (raw, json)
Hash identifier: a7dziqAdCKwHsLIsEIGDuAGznbdMDCGC/Dis+R5cbyY=
Subject key identifier: A3:B1:44:EA:7A:C2:65:B9:41:CC:F9:FC:38:11:5D:76:F7:C1:8B:0C
Certificate issuer: /CN=A91BE096/serialNumber=4ABDA24AD7BD9E8D9CEFB35938D0A878804C62E4
Certificate serial: 0FAF
Authority key identifier: 4A:BD:A2:4A:D7:BD:9E:8D:9C:EF:B3:59:38:D0:A8:78:80:4C:62:E4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/A3F44008D7A211EEA4F45676C4F9AE02.roa
Signing time: Fri 01 Mar 2024 08:06:43 +0000
ROA not before: Fri 01 Mar 2024 08:06:43 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 45355
IP address blocks: 103.75.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Sep 2024 13:31:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4015 (0xfaf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BE096/serialNumber=4ABDA24AD7BD9E8D9CEFB35938D0A878804C62E4
Validity
Not Before: Mar 1 08:06:43 2024 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=65e18c93-3b48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:72:4f:7c:7d:92:6d:34:84:35:5d:1d:aa:d8:
78:b4:36:48:07:81:ae:7f:4e:2a:55:62:c1:ea:88:
a9:fc:13:ee:b1:b5:84:e2:37:98:81:ac:37:f8:f8:
a4:2a:5a:e7:c6:ad:c4:41:d2:ac:e1:3a:2f:be:a0:
77:46:0e:95:fb:dc:27:56:ef:c7:a2:95:bc:3a:ac:
66:75:ea:aa:d2:61:92:c3:f6:e1:47:1d:40:01:09:
e2:fa:1b:79:f4:44:71:a4:3b:d4:09:5c:4b:c7:27:
2b:1d:da:ac:5d:d7:86:27:e7:38:f1:6e:4e:c7:98:
4e:21:8b:a7:7e:58:c9:6b:d1:73:31:17:e6:db:68:
58:ba:26:94:e7:7f:c4:df:ef:3d:a5:9d:f1:71:42:
4e:09:07:14:6a:21:d8:7e:38:2d:be:1d:02:4e:5a:
0f:a3:b8:2a:17:62:40:fd:30:95:e0:e8:f7:9a:19:
11:f4:b6:13:1c:40:2c:49:9b:85:28:12:22:ce:19:
1b:30:03:6d:ee:55:86:fc:d6:e2:83:1f:b9:41:b9:
f7:87:91:64:e5:e0:9b:6e:5a:81:3b:bc:8c:de:75:
31:bf:af:4a:de:f4:da:54:92:e6:36:10:77:79:39:
e9:43:03:0f:9e:d7:c0:fd:15:72:80:fd:4c:a1:72:
39:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:B1:44:EA:7A:C2:65:B9:41:CC:F9:FC:38:11:5D:76:F7:C1:8B:0C
X509v3 Authority Key Identifier:
keyid:4A:BD:A2:4A:D7:BD:9E:8D:9C:EF:B3:59:38:D0:A8:78:80:4C:62:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/A3F44008D7A211EEA4F45676C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.75.21.0/24
Signature Algorithm: sha256WithRSAEncryption
84:11:c8:1e:4e:ce:38:38:5a:2b:1f:07:73:fd:0f:f4:27:74:
5e:31:ed:1d:c2:57:dd:03:10:1a:63:80:09:c9:04:f7:38:f0:
41:c4:ee:95:53:a2:b8:67:d4:29:b7:e8:40:19:39:6f:0d:3d:
f0:d9:66:a0:11:ba:c8:28:13:d1:b4:55:51:d9:d0:aa:b2:f3:
33:0d:17:eb:9e:88:3c:71:aa:d3:92:cc:c7:24:a2:0a:76:67:
46:39:f4:8a:c9:f7:16:64:df:fd:c2:1f:d0:e4:88:53:46:b4:
1a:a2:67:cd:af:9a:95:cd:a2:b2:09:7b:a0:a8:04:7f:aa:cb:
75:98:e0:90:c0:89:e8:d8:dc:a4:c5:86:f8:e8:7d:79:e4:a5:
a6:40:90:65:0f:7e:c6:ba:da:b8:a8:4d:49:4a:21:db:a2:69:
9a:5e:9c:e1:2d:e3:de:75:d9:74:ea:56:be:26:df:42:d1:e6:
f3:29:7d:e9:b0:cf:74:28:e2:83:4f:ef:cc:08:19:a4:43:e2:
b6:3a:b1:76:f3:b2:87:bf:a1:58:a3:38:f6:b6:81:c8:ea:36:
ab:e9:bc:d6:ce:29:f4:aa:d2:46:b9:4d:22:84:f3:c9:07:b3:
30:16:4a:ad:96:2a:74:f2:6c:fb:6d:5d:f3:95:8b:d8:1b:c4:
dc:51:9e:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 19:07:30 2024 by rpki-client on console-ams.rpki-client.org